logo
DATABASE RESOURCES PRICING ABOUT US

php: Security update (7 CVEs)

Description

The php package has been rebuilt and was uploaded to the Chaos Calmer 15.05 repository due to multiple security issues. VERSION 5.6.8-1 => 5.6.17-1 CHANGELOG [Sun, 24 Jan 2016 21:47:52 +0100 18d121b] Update to 5.6.17 Fixes CVE-2016-1903. [Wed, 23 Dec 2015 16:00:14 -0500 766cfcc] Update to 5.6.16 [Wed, 23 Dec 2015 16:00:04 -0500 41f541b] Update to 5.6.15 [Wed, 23 Dec 2015 15:59:54 -0500 0df349f] Update to 5.6.14 [Wed, 23 Dec 2015 15:59:43 -0500 196b622] Update to 5.6.13 [Wed, 23 Dec 2015 15:59:32 -0500 1cbcdf7] Fix the two different maintainer fields into one (fixes #1688) [Wed, 23 Dec 2015 15:59:21 -0500 9bbdad4] Update to 5.6.12 [Wed, 23 Dec 2015 15:59:10 -0500 6cba0bf] This fixes the following CVEs: - in PCRE: CVE-2015-2325, CVE-2015-2326 - in sqlite3: CVE-2015-3414, CVE-2015-3415, CVE-2015-3416 [Wed, 23 Dec 2015 15:58:46 -0500 559df39] This fixes CVE-2006-7243, a multipart/form-data remote dos vulnerability, a heap buffer overflow in unpack and a integer overflow in ftp_genlist, which also results in a heap overflow. For more details, see http://php.net/ChangeLog-5.php#5.6.9 Also sync the timezone patch with latest version from Debian and adopt this patch for the changes in this php release. Refresh 950-Fix-dl-cross-compiling-issue.patch. [Wed, 23 Dec 2015 15:58:27 -0500 f0a0448] This patch adds build infrastructure for PHP's OPcache extension. Compared with the other extension, this is a Zend module and it need a little workaround during cross-compiling. [Wed, 23 Dec 2015 15:57:57 -0500 f04165e] Pecl: move phpize into prepare stage This allows pecl modules to rely on PKG_FIXUP:=autoreconf. CHANGES lang/php5/Makefile | 24 ++- lang/php5/files/php.ini | 10 ++ ...bian_patches_use_embedded_timezonedb.patch | 136 ++++++++------ ...xt-opcache-fix-detection-of-shm-mmap.patch | 159 +++++++++++++++++ .../950-Fix-dl-cross-compiling-issue.patch | 23 ++- lang/php5/pecl.mk | 7 +- 6 files changed, 277 insertions(+), 82 deletions(-)


Related